Diferencia entre revisiones de «Notas de Moodle 2.8.11»
De MoodleDocs
(updated as DEV page) |
(updated as per DEV Docs) |
||
Línea 12: | Línea 12: | ||
===Asuntos de seguridad=== | ===Asuntos de seguridad=== | ||
* [https://moodle.org/mod/forum/discuss.php?d=330173 MSA-16-0003] Incorrect capability check when displaying users emails in Participants list | |||
* [https://moodle.org/mod/forum/discuss.php?d=330174 MSA-16-0004] XSS from profile fields from external db | |||
* [https://moodle.org/mod/forum/discuss.php?d=330175 MSA-16-0005] Reflected XSS in mod_data advanced search | |||
* [https://moodle.org/mod/forum/discuss.php?d=330176 MSA-16-0006] Hidden courses are shown to students in Event Monitor | |||
* [https://moodle.org/mod/forum/discuss.php?d=330177 MSA-16-0007] Non-Editing Instructor role can edit exclude checkbox in Single View | |||
* [https://moodle.org/mod/forum/discuss.php?d=330178 MSA-16-0008] External function get_calendar_events return events that pertains to hidden activities | |||
* [https://moodle.org/mod/forum/discuss.php?d=330179 MSA-16-0009] CSRF in Assignment plugin management page | |||
* [https://moodle.org/mod/forum/discuss.php?d=330180 MSA-16-0010] Enumeration of category details possible without authentication | |||
* [https://moodle.org/mod/forum/discuss.php?d=330181 MSA-16-0011] Add no referrer to links with _blank target attribute | |||
* [https://moodle.org/mod/forum/discuss.php?d=330182 MSA-16-0012] External function mod_assign_save_submission does not check due dates | |||
==Vea también== | ==Vea también== |
Revisión actual - 18:22 21 mar 2016
Nota: Esta es una traducción de una página de la documentación para desarrolladores (Developer docs), que se considera particularmente importante, y que en su versión original se actualiza frecuentemente. Por ello, se le recomienda que revise la página original en idioma inglés: Moodle 2.8.10 release notes.
Moodle 2.8
Nota: Esta versión de Moodle ya no está soportada. Se le recomienda hacer una Actualización a una versión soportada de Moodle. |
Historia de las versiones > Notas de Moodle 2.8.11
Fecha de liberación: 14 marzo 2016
Aquí está la lista completa de problemas corregidos en 2.8.11.
Asuntos de seguridad
- MSA-16-0003 Incorrect capability check when displaying users emails in Participants list
- MSA-16-0004 XSS from profile fields from external db
- MSA-16-0005 Reflected XSS in mod_data advanced search
- MSA-16-0006 Hidden courses are shown to students in Event Monitor
- MSA-16-0007 Non-Editing Instructor role can edit exclude checkbox in Single View
- MSA-16-0008 External function get_calendar_events return events that pertains to hidden activities
- MSA-16-0009 CSRF in Assignment plugin management page
- MSA-16-0010 Enumeration of category details possible without authentication
- MSA-16-0011 Add no referrer to links with _blank target attribute
- MSA-16-0012 External function mod_assign_save_submission does not check due dates